A. It is the best solution for interconnecting multiple data centers.B. It optimizes STP throughout the Layer 2 network.C. It is a simplified extension of Layer 3 networks across a single data center.D. The Cisco FabricPath domain appears as a single STP bridge, where each edge port uses the same MAC address.

Answer: DExplanation:To have a loop-free topology for the CE/FabricPath hybrid network, the FabricPath network automatically displays as a single bridge to all connected CE devices. The STP domains do not cross into the FabricPath network. If multiple STP domains are defined, BPDUs and topology change notifications (TCNs) are localized to the domain. If a connected STP domain is multihomed to the FabricPath domain, a TCN must be able to reach to all devices in the STP domain through the FabricPath domain. As a result, the TCN is sent to the FabricPath domain through the IS-IS protocol data unit (PDU) by default.http://www.cisco.com/en/US/docs/switches/datacenter/nexus5000/sw/mkt_ops_guides/513_n1_1/ n5k_ops_fabricpath.html

QUESTION 2Which statement about scalability in Cisco OTV is true?

A. The control plane avoids flooding by exchanging MAC reachability.B. IP-based functionality provides Layer 3 extension over any transport.C. Any encapsulation overhead is avoided by using IS-IS.D. Unknown unicasts are handled by the authoritative edge device.

A. M1, M2, and F1 cards are allowed in the same VDC.B. M line cards are service-oriented and likely face the access layer and provide Layer 2 connectivity.C. F line cards are performance-oriented and likely connect northbound to the core layer for Layer 3 connectivity.D. M line cards support Layer 2, Layer 3, and Layer 4 with large forwarding tables and a rich feature set.E. The F2 line card must reside in the admin VDC.

Answer: ADExplanation:Cisco is introducing a new line card called as F3 Module which has rich feature set and offers high performance 40G/100G port density to the Nexus 7000 product family. Cisco also introduced a new feature in NX-OS 6.2(2) where the F2e line card can be in the same VDC as M1 or M2 Line Card. The objective of this session is to cover detailed steps and methodology of migrating Nexus 7000 with VDC types prior to NX-OS 6.2 to the newer F3 or M/F2e VDC types. The session also covers the effect of VDC migration with commonly used Network features, firewall and load balancer services.M-Series XL modules support larger forwarding tables. M-Series modules are frequently required at network core, peering, and aggregation points. When used with the F1-Series, the M-Series modules provide inter-VLAN services and form a pool of Layer 3 resources for the system.https://www.ciscolive2014.com/connect/sessionDetail.ww?SESSION_ID=2244http://www.cisco.com/c/en/us/td/docs/solutions/Enterprise/Data_Center/VMDC/2-6/vmdctechwp.html

QUESTION 4Which statement about the Layer 3 card on the Cisco Nexus 5500 Series Switch is true?

A. BGP support is not provided, but RIP, EIGRP, and OSPF support is provided.B. Up to two 4-port cards are supported with up to 160 Gb/s of Layer 3 forwarding capability.C. Up to 16 FEX connections are supported.D. Port channels cannot be configured as Layer 3 interfaces.

Answer: CExplanation:From the Cisco NX-OS 5.1(3)N1(1) release and later releases, each Cisco Nexus 5500 Series device can manage and support up to 24 FEXs without Layer 3. With Layer 3, the number of FEXs supported per Cisco Nexus 5500 Series device is 8. With Enhanced vPC and a dual-homed FEX topology each FEX is managed by both Cisco Nexus 5000 Series devices. As a result, one pair of Cisco Nexus 5500 Series devices can support up to 24 FEXs and 16 FEXs for Layer 2 and Layer 3.http://www.cisco.com/en/US/docs/switches/datacenter/nexus5000/sw/mkt_ops_guides/513_n1_1/ n5k_enhanced_vpc.html

A. There is support for multiple (power of 2) uplinks.B. Upstream Layer 2 disjoint networks will remain separated.C. The 6200 can connect directly via vPC to a Layer 3 aggregation device.D. STP is not required on the uplink ports from the 6200.

Answer: DExplanation:In Cisco Unified Computing System environments, two Ethernet switching modes determine the way that the fabric interconnects behave as switching devices between the servers and the network. In end-host mode, the fabric interconnects appear to the upstream devices as end hosts with multiple links. In end-host mode, the switch does not run Spanning Tree Protocol and avoids loops by following a set of rules for traffic forwarding. In switch mode, the switch runs Spanning Tree Protocol to avoid loops, and broadcast and multicast packets are handled in the traditional way.http://www.cisco.com/c/en/us/solutions/collateral/data-center-virtualization/unified-computing/whitepaper_c11-701962.html

QUESTION 6Which option is a restriction of the unified ports on the Cisco UCS 6200 Series Fabric Interconnect when connecting to the unified fabric network?

A. Direct FC connections are not supported to Cisco MDS switchesB. The FCoE or Fibre Channel port allocations must be contiguous on the 6200.C. 10-G Fibre Channel ports only use SFP+ interfaces.D. vPC is not supported on the Ethernet ports.

Answer: BExplanation:When you configure the links between the Cisco UCS 2200 Series FEX and a Cisco UCS 6200 series fabric interconnect in fabric port channel mode, the available VIF namespace on the adapter varies depending on where the FEX uplinks are connected to the fabric interconnect ports.Inside the 6248 fabric interconnect there are six sets of eight contiguous ports, with each set of ports managed by a single chip. When uplinks are connected such that all of the uplinks from an Cisco 642-997 ExamFEX are connected to a set of ports managed by a single chip, Cisco UCS Manager maximizes the number of VIFs used in service profiles deployed on the blades in the chassis. If uplink connections from an IOM are distributed across ports managed by separate chips, the VIF count is decreased.http://www.cisco.com/c/en/us/td/docs/unified_computing/ucs/hw/6200-install-guide/6200_HIG/6200_HIG_chapter_01.html

QUESTION 7Which statement about the implementation of Cisco TrustSec on Cisco Nexus 7000 Series Switches is true?

A. While SGACL enforcement and SGT propagation are supported on the M and F modules, 802.1AE (MACsec) support is available only on the M module.B. SGT Exchange Protocol is required to propagate the SGTs across F modules that lack hardware support for Cisco TrustSec.C. AAA authentication and authorization is supported using TACACS or RADIUS to a Cisco Secure Access Control Server.D. Both Cisco TrustSec and 802.1X can be configured on an F or M module interface.

Answer: AExplanation:The M-Series modules on the Nexus 7000 support 802.1AE MACSEC on all ports, including the new M2-series modules. The F2e modules will have this feature enabled in the future. It is important to note that because 802.1AE MACSEC is a link-level encryption, the two MACSEC-enabled endpoints, Nexus 7000 devices in our case, must be directly L2 adjacent. This means we direct fiber connection or one facilitated with optical gear is required. MACSEC has integrity checks for the frames and intermediate devices, like another switch, even at L2, will cause the integrity checks to fail. In most cases, this means metro-Ethernet services or carrier-provided label switched services will not work for a MACSEC connection.http://www.ciscopress.com/articles/article.asp?p=2065720

A. Cisco TrustSec support varies depending on Cisco Nexus 5500 Series Switch model.B. The hardware is not able to support MACsec switch-port-level encryption based on IEEE 802.1AE.C. The maximum number of RBACL TCAM user configurable entries is 128k.D. The SGT Exchange Protocol must use the management (mgmt 0) interface.